Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ccl/jwtauthccl: allow tenants to set jwt auth settings #92406

Merged
merged 1 commit into from
Nov 30, 2022
Merged

ccl/jwtauthccl: allow tenants to set jwt auth settings #92406

merged 1 commit into from
Nov 30, 2022
+4 −4

Conversation

kpatron-cockroachlabs
Copy link
Contributor

Previously, tenants were prevented from modifying the cluster settings that controlled jwt based auth. This prevented these customers from using external signers and made it more complicated for us to support CC
serverless cluster SSO.

This change makes it so that tenants can configure their JWT auth cluster settings. This paves the way for full support of cluster SSO in severless.

Release note (enterprise change): JWT authentication cluster settings can now be modified from within
tenants to better support serverless use cases.

@kpatron-cockroachlabs kpatron-cockroachlabs requested a review from a team as a code owner November 23, 2022 18:49
@cockroach-teamcity
Copy link
Member

This change is Reviewable

knz
knz approved these changes Nov 24, 2022
View reviewed changes
Copy link
Contributor

@knz knz left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

great thanks

@kpatron-cockroachlabs
Copy link
Contributor Author

bors r+

@craig
Copy link
Contributor

craig bot commented Nov 28, 2022

Build failed (retrying...):

@craig
Copy link
Contributor

craig bot commented Nov 28, 2022

Build failed (retrying...):

@craig
Copy link
Contributor

craig bot commented Nov 28, 2022

Build failed (retrying...):

@craig
Copy link
Contributor

craig bot commented Nov 29, 2022

Build failed:

@kpatron-cockroachlabs
Copy link
Contributor Author

bors r-

@kpatron-cockroachlabs kpatron-cockroachlabs force-pushed the kpatron/tenant-writable-jwt-settings branch 2 times, most recently from c76f2be to ff83994 Compare November 29, 2022 17:16
@kpatron-cockroachlabs
ccl/jwtauthccl: allow tenants to set jwt auth settings
4b4d925 
Previously, tenants were prevented from modifying the
cluster settings that controlled jwt based auth. This
prevented these customers from using external signers
and made it more complicated for us to support CC
serverless cluster SSO.

This change makes it so that tenants can configure their
JWT auth cluster settings. This paves the way for full
support of cluster SSO in severless.

Fixes CC-8608.

Release note (enterprise change): JWT authentication
cluster settings can now be modified from within
tenants to better support serverless use cases.
@kpatron-cockroachlabs
Copy link
Contributor Author

bors r+

@craig
Copy link
Contributor

craig bot commented Nov 30, 2022

Build succeeded:

@craig craig bot merged commit 596c25e into cockroachdb:master Nov 30, 2022
@blathers-crl blathers-crl bot mentioned this pull request Nov 30, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@knz knz knz approved these changes

@rafiss rafiss Awaiting requested review from rafiss

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
3 participants
@kpatron-cockroachlabs @cockroach-teamcity @knz